@inproceedings{8f4194566b8144668ca7fc4e1a945fc1,
title = "Analysis of the SMS4 block cipher",
abstract = "SMS4 is a 128-bit block cipher used in the WAPI standard for providing data confidentiality in wireless networks. In this paper we investigate and explain the origin of the S-Box employed by the cipher, show that an embedded cipher similar to BES can be obtained for SMS4 and demonstrate the fragility of the cipher design by giving variants that exhibit 264 weak keys. We also show attacks on reduced round versions of the cipher. The best practical attack we found is an integral attack that works on 10 rounds out of 32 rounds with a complexity of 218 operations; it can be extended to 13 rounds using round key guesses, resulting in a complexity of 2114 operations and a data complexity of 216 chosen pairs.",
keywords = "Algebraic structure, Block ciphers, Cryptanalysis, UFN",
author = "Liu Fen and Ji Wen and Hu Lei and Ding Jintai and Lv Shuwang and Andrei Pyshkin and Weinmann, {Ralf Philipp}",
year = "2007",
language = "English",
isbn = "3540734570",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
pages = "158--170",
booktitle = "Information Security and Privacy - 12th Australasian Conference, ACISP 2007, Proceedings",
note = "12th Australasian Conference on Information Security and Privacy, ACISP2007 ; Conference date: 02-07-2007 Through 04-07-2007",
}